Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/uk9dA0Ost_cAaAYFSzZvBBuiHcs.roa
File: uk9dA0Ost_cAaAYFSzZvBBuiHcs.roa (raw, json)
Hash identifier: 28p1Q191Kj368KhcUtmeH8I5WxQZ+yYqxoZahpRUIj8=
Subject key identifier: BA:4F:5D:03:43:AC:B7:F7:00:68:06:05:4B:36:6F:04:1B:A2:1D:CB
Certificate issuer: /CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Certificate serial: 03E2D886
Authority key identifier: 58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/uk9dA0Ost_cAaAYFSzZvBBuiHcs.roa
Signing time: Sat 01 Jan 2022 02:55:35 +0000
ROA not before: Sat 01 Jan 2022 02:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12695
IP address blocks: 2a00:f940::/49 maxlen: 49
2a00:f940::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65198214 (0x3e2d886)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Validity
Not Before: Jan 1 02:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba4f5d0343acb7f7006806054b366f041ba21dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ed:17:0e:92:c7:c5:0d:42:b9:85:40:08:53:
e6:ea:f5:77:17:33:8a:e4:71:98:a9:b8:4a:70:24:
c2:90:96:e5:34:c6:79:24:59:98:8d:44:41:e2:fc:
12:17:f0:e9:8f:ad:22:7a:fc:9f:d2:53:bc:d3:8d:
ee:7c:b1:fd:3a:3a:b5:c6:10:f9:a2:b8:54:e8:74:
07:16:32:d0:af:6a:ed:b5:40:a9:3e:fd:05:c1:58:
ad:00:ad:49:8c:64:f2:03:d5:a6:43:43:99:bb:bb:
45:a6:eb:6d:15:19:e2:8d:72:9f:99:12:da:14:e3:
47:9b:a0:bb:07:14:c0:be:a6:7b:7d:31:4b:93:e5:
08:00:03:3a:7f:21:15:f8:b6:fe:7f:4d:6b:df:f4:
4e:5a:03:ce:9d:2c:64:5c:8c:03:8d:90:1e:0c:94:
ce:0e:b6:04:43:47:2f:17:5e:76:d2:2a:93:3c:b3:
7c:99:e0:53:6a:eb:cb:f7:2a:64:ce:f2:ad:17:72:
e1:d9:fc:a8:28:eb:ec:45:0b:6e:86:05:b3:29:67:
2f:f9:d6:b2:88:28:ff:db:48:d1:73:4b:61:39:e6:
35:9d:b7:9b:92:56:98:90:c2:8e:d1:c6:a2:e9:fc:
ae:60:ec:95:c6:14:7b:24:3d:20:e2:35:81:af:80:
84:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4F:5D:03:43:AC:B7:F7:00:68:06:05:4B:36:6F:04:1B:A2:1D:CB
X509v3 Authority Key Identifier:
keyid:58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/uk9dA0Ost_cAaAYFSzZvBBuiHcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/WDMpShzcE1ivxDnApyczsGWob4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:f940::/48
Signature Algorithm: sha256WithRSAEncryption
94:c8:39:e3:4f:bb:cd:b5:a6:7b:f3:e5:94:57:74:c3:c6:a9:
8e:92:c5:fc:10:0e:bf:30:4b:d2:6c:7c:18:80:eb:8f:b8:dd:
9e:5d:18:91:6e:21:1a:ab:1f:3b:91:dd:4e:06:c3:9d:74:ca:
2c:bb:f7:93:b3:5f:ba:61:c7:3f:81:12:f4:17:9a:20:75:04:
d2:c7:df:7a:e8:72:f1:a9:39:bd:8c:2b:41:bf:5e:36:01:aa:
76:cc:2b:e9:b1:2f:fa:e6:9b:62:43:e1:ab:4e:0d:78:f7:79:
f2:1b:35:22:21:27:11:4c:79:34:8d:b4:27:14:68:38:12:20:
0d:3d:c6:b1:c4:27:cd:bd:81:76:a9:2a:0c:01:be:e3:b8:cb:
0e:67:ba:92:56:86:80:1b:e5:f3:98:6e:63:67:04:fc:1a:d6:
fa:9b:86:df:55:f3:2f:2e:0b:2f:f8:c4:b4:9d:ea:5f:1a:d8:
89:27:56:69:81:5c:26:f2:c6:ab:10:a0:d8:74:ce:c1:08:f3:
f0:cb:a3:c1:4d:cd:56:23:4d:95:14:48:bc:6e:35:48:0a:4f:
a3:66:72:e3:0f:1f:68:f5:32:3e:73:83:2a:b2:e6:82:fd:16:
17:9d:6a:b1:23:dd:77:fb:df:27:97:db:3a:be:fc:4c:3b:04:
dd:7e:a2:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org